Information Security & Business Management

Your purpose:

To provide relevant expertise in information security and resilience providing expert advice, control and guidance to protect the company from loss, service disruption, prosecution and other damage.

You will be accountable for:

• roviding expertise in relation to information security and resilience by acting as the primary l professional expert and first point of contact within market; acting as a champion and role model for others, providing guidance and advice
• Implementing the global strategy with contributing to nd implementing local strategy, policy, internal control frameworks, procedures, standards and awareness for information security and resilience by working as part of a global group of information security & business continuity experts. You will also execute risk assessments and monitor risk treatment actions as part of market level risk management frameworks relating to information security and BCM
• Developing and reviewing processes that contributes to the monitoring of compliance to these strategies and policies at a Country-level; including compliance to regulatory requirements. You will also specifically be responsible for reviewing processes and systems for information security and resilience and making recommendations to improve the design, efficiency and / or effectiveness of activities and controls
• You will support the local Loss Prevention Field Team to resolve issues related information security and resilience
• You will be the key liaison point with relevant country-specific regulatory and law enforcement agencies for information security and resilience within market; monitor the regulatory changes, propose and monitor of implementation of required changesnbsp;
• You will report the detected information security or business continuity incidents; execute nvestigations into serious incidents of information security or service disruption; ropose, follow up and report the progress of recommendations for corrective actions to ensure lessons identified are cascaded in the market
• ou will ensure that all employees are aware of their responsibilities around information security and business continuity by ensuring that all training and induction materials are developed in-line with latest regulations and internal policy and ensuring delivery of these materials by planning and scheduling information security & business continuity awareness, education and training activities for the market - in consultation with HR.